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1 . An apparatus for managing access to a cryptograpjliically secured access-controlled 
datum, comprising: 

(a) input logic for receiving a candidate acofess code; 

(b) a first memory configured to store a cj^ptographically camouflaged access- 
controlled datum; 

(c) first cryptographic logic operative^ connected to said input logic and said first 
memory for processing said cryptographically camouflaged access-controlled datum using said 
candidate access code; and 

(d) output logic for providing saicyprocess^d-datym access-controlled datum to a user 
of said apparatus. 



The apparatus of claim 1 wherein:/ 
(a) said access-controlled datf 



«s 3 code; 



(b) a second memory configured 




partially encrypted using an access 
jo store ^ryptograpfSTrepresentation of said access 



4 

5 code; 

6 (c) said first cryptographic logic includes: 

7 (i) second cryptographic logic operatively connected to said input logic and 

8 configured to regenerate said cryptographic representation of said access code in response to said 

9 candidate access code belonging to a plurality of pseudo-valid access codes; and 

10 (ii) third cryptographic logic configured to receive said regenerated 

1 1 cryptographic representation/from said second cryptographic logic, and operatively connected to 

12 said first memory and to sa/d input logic for using said received candidate access code in 
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13 decrypting said stored encrypted access-controlled datjam to produce a decrypted access- 

14 controlled datum. 

1 3. The apparatus of claim 2 wherein said access-controlled datum is a cryptographic key. 

1 4. The apparatus of claim 3 wherein said cryptographic key is a private key. 

1 5. The apparatus of claim 4 further comprising a pseudo-public key corresponding to said 

2 private key. 

1 6. The apparatus of claim 5 further comprising a pseujio-public certificate containing said 

2 pseudo-public key. 



^ 1 7. The apparatus of claim 6 wherein said pseudo 



1 8. The apparatus of claim 7 wherein said pseud< 

2 having a corresponding private key that is not generj 




is encrypted with a public key 



fi 1 9. The apparatus of claim 4 wherein said private key is well-formed. 



1 10. The apparatus of claim 9 wherein said private key includes a modulus not having any 

2 small factors, and an exponent smapr than said modulus. 

1 11. The apparatus of claim 9 wherein said private key includes: 

2 (a) a cleartext representation of said modulus; and 

3 (b) a cryptographic/representation of at least a part of an exponent corresponding to 

4 said modulus. 



1 12. The apparatus of claim 1 1 : 
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2 (a) further comprising a third memory for storing a number larger than said exponent 

3 and smaller than said modulus; and 

4 (b) wherein said at least part of said exponent is stored in an expanded form which, 

5 when evaluated modulo said number, equals said at least part of said exponent. 



1 13. The apparatus of claim 1 1 wherein said at l^fast part of said exponent represents certain 

2 less significant bits of said exponent. 

1 14. The apparatus of claim 3 wherein said second cryptographic logic for said regeneration of 

2 said cryptographic representation of said access code includes a many-to-one hash. 

1 15. The apparatus of claim 14 wherein said many-to-one hash is a good hash. 



sh function; and 



1 16. The apparatus of claim 2 wherein/ 

2 (a) said cryptographic representation includes a Ha 

3 (b) said second cryptographic logic |or said reg^fipration of said cryptographic 

4 representation includes a many-to-one hash. 



1 17. The apparatus of claim 16 wherein sa d many4o-one hash is a good hash, 



1 18. The apparatus of claim 17 wherein said good hash is characterized in that said plurality of 

2 pseudo-valid access codes are/distributed substantially uniformly among a plurality of invalid 

3 access codes. 

1 19. The apparatus of claim 16 wherein said access-controlled datum is a private key. 

1 20. The apparatus oyr claim 1 9 further comprising a pseudo-public key corresponding to said 

2 private key. 



1 21. The apparatus of claim 19 wherein said private key is well-formed. 
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22. The apparatus of claim 19 further comprising digital signing logic including: 

(a) input logic for receiving a message to be signed; j 

(b) randomizing logic for generating random data^and 

(c) fourth cryptographic logic operatively connoted to said input logic and to said 
randomizing logic for: 

(i) padding said received message With said generated random data; and 

(ii) signing said padded message jwith said decrypted access-controlled datum. 

23. The apparatus of claim 2 wherein said tiurd ciyptogj^phic lo$ic is configured to disallow 
said decryption when said received candidate; access code; is an invalid access code. 



k 1 24. The apparatus of claim 2 implemented as a software pro 



^ 1 25. The apparatus of claim 2 implemented as a hardware device 




1 26. The apparatus of claim/2 further comprising digital signing logic including: 

2 (a) input logic for receiving a message to be signed; 

3 (b) randomizing logic for generating random data; and 

4 (c) fifth cryptographic logic operatively connected to said input logic and to said 

5 randomizing logic foi 



(i) / padding said received message with said generated random data; and 
l) signing said padded message with said decrypted access-controlled datum. 



1 27. The/apparatus of claim 26 wherein said generated random data is strongly random. 



1 28. 

2 source 



le apparatus of claim 27 wherein said generated random data originates from a physical 
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1 29. The apparatus of claim 2 wherein said third cryptographic logic for decrypting includes a 

2 symmetric cryptographic function. 

1 30. The apparatus of claim 29 wherein said symmetric cryptographic^ function is DES. 

1 31. The apparatus of claim 1 wherein said stored access-controded datum is a private key 

2 having a corresponding public key that includes a long exponent. 

1 32. A cryptographic key wallet comprising: 

2 (a) input logic for receiving a user-inputt^ access code that may belong to a plurality 

3 of pseudo-valid access codes; 

4 (b) cryptographic logic for decryptijafg a stored access-controlled datum, using said 

5 pseudo-valid access code, upon cryptograph&ally verifying said psekio-valid access code; and 

6 (c) output logic for providing/said deciypted access-controlled datum to said user. 

/ , L 

1 33. The cryptographic key wallet of claim 32f wherein said ^ccpss-controlled datum includes 

2 a private key having a corresponding pseudo-public key. 



1 34. The cryptographic Jcey wallet of claim 

2 containing said pseudo^ublic key. 





3 further Comprising a pseudo-public certificate 



1 35. A digital certificate server comprising: 

2 (a) input logic for receiving from a requestor a digitally signed request for a pseudo- 

3 public digital/certificate, said request including: 

4 / (i) a pseudo-public key to be certified, and 

5 / (ii) an identifying attribute of said requestor; 

6 Ob) cryptographic logic for verifying said digitally signed request using said pseudo- 

7 public/key; 



-28- 



8 (c) logic for creating said pseudo-public certificate updn said verifying said digitally 

9 signed request, said certificate including a cryptographic representation of said pseudo-public 

10 key; and 

1 1 (d) output logic for providing said pseudo-public certificate for said requestor. 



36. The digital certificate server of claim 35 configured/for use with a digital wallet, said 
digital wallet comprising: 

(a) input logic for receiving a candidate access code; 

(b) a first memory configured to store a cryptographically camouflaged access- 
controlled datum; 

(c) first cryptographic logic operatively connected' to said] input logic and said first 
memory for processing said cryptographically camouflaged access-controlled datum using said 
candidate access code; and 

(d) output logic for providing said pr/Jcesse^f datum access-controlled datum to a user 
of said apparatus. 
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Jf; 1 37. The digital certificate server of clain/ 35 wheijein said n/eutio-public certificate is of a 

r i H / 

fU 2 modified conventional format. 

Sa is* 

^ 1 38. The digital certificate server of claim 35 wherein said pseudo-public key is encrypted. 

1 39. The digital certificate server or claim 38 wherein said pseudo-public key is encrypted 

2 with a public key having a corresponding private key that is not generally known. 

1 40. The digital certificate server of claim 35 implemented as an add-on module for use with a 

2 conventional digital certificate server. 




1 41. Apparatus for verifying a digitally-signed message, comprising: 

2 (a) input logic for receiving a digitally-signed message and a pseudo-public key 

3 allegedly corresponding t<y a signer of said message; 
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4 (b) cryptographic logic for using a puftlic key of an enterprise certifying authority to 

5 cryptographically verify the pseudo-public key ;/and 

6 (c) signalling logic for detecting fraudulent use of said message upon failure of said 

7 verified pseudo-public key to successfully verily said signed message. 

1 42. The apparatus of claim 41 wherein said digitally-signed message is signed using a 

2 candidate private key that was generated by p. cryptographic key wallet in response to a pseudo- 

3 valid access code. 
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1 43. The apparatus of claim 42 whereirf said key wajfefihpludes 

2 (a) input logic for receiving af candidate ^access cofie; 

(b) a first memory configured to storeya cryptograpjiically camouflaged access- 
controlled datum; 

(c) first cryptographic logib operati^ely connected ^6 /said input logic and said first 
memory for processing said cryptogrpphicall; 
candidate access code; and 

(d) output logic for prodding saic 
of said apparatus. 



camouflaged gcceps-controlled datunMlsing said 
processedydatum access-controlled datum to a user 



44. The apparatus of claim 4 If wherein said logic for detecting said fraudulent use includes 
logic for freezing access to said Apparatus upon a plurality of unsuccessful attempted 
verifications. 



1 45. The apparatus of claim 41 wherein said logic for detecting said fraudulent use includes 

2 logic for effecting an alarm upon unsuccessful attempted verification. 

1 46. The apparatus of cliim 41 wherein said cryptographic logic for using a public key of an 

2 enterprise certifying authority to verify the pseudo-public key includes cryptographic logic for 

3 decrypting said pseudo-public key. 
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1 47. The apparatus of claim 41 wherein ^jaid received pseudo-public key is contained in a 

2 pseudo-public certificate. 



1 48. A method for providing a stored c/yptographically-secured access-controlled datum, 

2 comprising the steps of: 

3 (a) receiving a candidate acccjss code from a user of a digital wallet; 

4 (b) accessing a stored, cryptographically camoflagued access-controlled datum; 

5 (c) cryptographically processing said cryptographically camoflagued access- 

6 controlled datum using said candidate access code; and 

7 (d) providing said processed datum acces^controllpd datum to said user of said 

8 wallet. 

1 49. The method of claim 48 wherein said stoi of ciyptogfojphically processing said 

2 cryptographically camoflaged access-controlledf datum using s aid candidate access code includes: 

(a) accessing from a firs* memory within a digital wallet, an acc^ss^ontrolled datum 
that has been at least partially encrwrted using an access code; 

(b) accessing from a second memory within said digital wallet, a cryptographic 
representation of said access code;] 

(c) regenerating said cryptographic representation of said access code in response to 
said candidate access code belonging to a plurality of pseudo-valid access codes; and 

9 (d) using said received candidate access code, decrypting said encrypted access- 
10 controlled datum to produce a decrypted access-controlled datum. 
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1 50. The method of claim 49 wherein said access-controlled datum is a cryptographic key. 



1 51. The method of claim SO wherein said cryptographic key is a private key. 



1 52. The method of claim/ 5 1 wherein said private key is a member of a cryptographic key pair 

2 including a pseudo-public Mey corresponding to said private key. 
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1 53. The method of claim 52 wherein said digital wallet includes a pseudo-public certificate 

2 containing said pseudo-public key. 

1 54. The method of claim 53 wherein said pseudo-public key is encrypted. 



1 55. The method of claim 54 wnerein said pseudo-public key is encrypted with a public key 

2 having a corresponding private ke; r that is not generally known. 

1 56. The method of claim 52 wftierein said private key is well-formed. 
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57. The method of claim 56 wherein said private key includes a modulus not having any 
small factors, and an exponent sir aller than sara modulus. 



58. The method of claim 56 v ^herein said private key ii dudes: 

(a) a cleartext representation of said modems; ^nd 

(b) a cryptographic representation of at )6ast a p; 
said modulus. 




exponent corresponding to 



59. The method of claim 58fwherein: 

(a) said private key £s stored in said first memory as an expanded form of at least part 
of said exponent; and 

(b) said step of decjypting said encrypted access-controlled datum includes: 

(i) retrieving from a third memory a number larger than said exponent and 
smaller than said modulus; 

(ii) retrieving said expanded form of at least part of said exponent from said 
first memory; and 

(iii) evaluating said expanded form of at least part of said exponent, modulo 
said number, to recover said/at least part of said exponent. 
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1 60. The method of claim 58 wherein said at legst part of said exponent represents certain less 

2 significant bits of said exponent. 

1 61. The method of claim 5 1 wherein said steb of regenerating said cryptographic 

2 representation of said access code includes performing a many-to-one hash. 

1 62. The method of claim 61 wherein said ipany-to-one hash is a good hash. 

1 63. The method of claim 50 wherein: 

2 (a) said cryptographic representation includes a hash function; and 

3 (b) said step of regenerating saiq cryptographic representation of said access code 

4 includes performing a many-to-one hash. 



1 64. The method of claim 63 wherein said mi 




ash is a good hash. 



1 65. The method of claim 64 wherein/said good hash is characterized in that said plurality of 

2 pseudo-valid access codes are distributed substantially unifcjfmly among a plurality of invalid 

3 access codes. 

1 66. The method of claim 63 wherein said Access-controlled datum is a private key. 

1 67. The method of claim 66 wherein said private key is a member of a cryptographic key pair 

2 including a pseudo-public key corresponding to said private key. 

1 68. The method of claim 66 wherein said private key is well-formed. 



1 69. The method of claim 66 mirther comprising the steps of: 

2 (a) receiving a message to be signed; 

3 (b) generating random data; 

4 (c) padding said received message with said generated random data; and 
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5 (d) signing said padded message with said decrypted access-controlled datum. 

1 70. The method of claim 50 wherein said step of decrypting said access-controlled datum is 

2 disallowed when said received candidate access code is ap invalid access code. 

1 71. The method of claim 50 implemented as a software program. 

1 72. The method of claim 50 implemented via ^hardware device. 



1 73. The method of claim 50 further comprising the steps of: 

2 (a) receiving a message to be signed; 

3 (b) generating random data; 

4 (c) padding said received message wrfti said generated random data; and 

5 (d) signing said padded mesafage Wth said decrypted access-controlled datum. 

1 74. The method of claim 73 wherein sayd generated 




1 75. The method of claim 74 wherein s^id generated/andc^n data originatprtrom a physical 

2 source. 

1 76. The method of claim io wherein saiKgtgp'of decrypting said encrypted access-controlled 

2 datum includes performing a symmetric cryptographic operation thereon. 



1 77. The method of claim 76 wherein said symmetric cryptographic operation is DES. 

1 78. The method of Zlaim 50 wherein said stored access-controlled datum is a private key 

2 having a corresponding public key that includes a long exponent. 



1 79. A method fior providing a stored cryptographically-secured access-controlled datum, 

2 comprising the steps of: 
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3 (a) receiving, at a digital wallet, a user-inputted access code that may belong to a 

4 plurality of pseudo-valid access codes; 

5 (b) decrypting, at said digital wallet, a stored accfess-controlled datum, using said 

6 pseudo-valid access code, upon cryptographically verifying said pseudo-valid access code; and 

7 (c) providing said decrypted access-controlled datum to said user of said digital 

8 wallet. 

1 80. The method of claim 79 wherein said acc^s-controlled datum includes a private key 

2 having a corresponding pseudo-public key. 
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8 1 . The method of claim 80 wherein sai/d digital wallet includes a pseudo-public certificate 
containing said pseudo-public key. 



1 82. A method for generating a pseiido 
(a) receiving from a requestor a 
certificate, said request including: 

(i) a pseudo-public key 

(ii) an identifying attrih 
cryptographically verifying 



comprising the steps of: 
request for a pseudo-public digital 



(b) 



key; 




request using said pseudo-public 



(c) creating said pseudo-public certificate upon said verifying said digitally signed 
request, said certificate including a cryptographic representation of said pseudo-public key; and 

(d) outputtmg said pseudo-public certificate for said requestor. 



1 83. The methoa of claim 82 further comprising the step of placing said created digital 

2 certificate in a digital wallet, said digital wallet comprising: 

3 (a) ipput logic for receiving a candidate access code; 

4 (b) A first memory configured to store a cryptographically camouflaged access- 

5 controlled datum; 
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6 (c) first cryptographic logic operatively connected to sailH input logic and said first 

7 memory for processing said cryptographically camouflaged acces/-controlled datum using said 

8 candidate access code; and 

9 (d) output logic for providing said processed dating access-controlled datum to a user 
10 of said apparatus. 

1 84. The method of claim 82 wherein said pseudo-pyolic certificate is of a modified 

2 conventional format. 

1 85. The apparatus of claim 84 wherein said pseudo-public key is encrypted. 
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The method of claim 85 wherein: 
(a) said pseudo-public key is ej 
private key that is not generally known. 



87. The method of claim 82 performed v/a an add-on modj 
digital certificate server. 




'lie key having a corresponding 



le for use with a conventional 



88. A method for verifying/a digitally-signed message, comprising the stens^f: 

(a) receiving, at ^message veritjication agjwatus, a aigitaUjf-Signed message and a 
pseudo-public key allegedly corresponding toVsigner of said message; 

(b) using a public key of an enterprise certifying authority to cryptographically verify 
the pseudo-public key^/and 

(c) detecting fraudulent use of said message upon failure of said verified pseudo- 
public key to successfully verify said signed message. 



1 89. The method of claim 88 wherein said digitally-signed message is signed using a 

2 candidate private key that was generated by a cryptographic key wallet in response to a pseudo- 

3 valid access/code. 
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1 90. The method of claim 89 wherein said key wallet includes: 

2 (a) input logic for receiving a candidate access cade; 

3 (b) a first memory configured to store a crypto§fraphically camouflaged access- 

4 controlled datum; 

5 (c) first cryptographic logic operatively connfected to said input logic and said first 

6 memory for processing said cryptographically camouflaged access-controlled datum using said 

7 candidate access code; and 

8 (d) output logic for providing said proceed datum access-controlled datum to a user 

9 of said ajpparatus. 

1 91. The method of claim 88 wherein said sren^of detecting said fraudulent use includes 

2 freezing access to said message verification Apparatus upon a\plurality of unsuccessful attempted 

3 verifications. 



1 92. The method of claim 88 wherein said step of detecting ^aid fraudulent use includes 

2 effecting an alarm upon unsuccessful attempted verification 



1 93. The method of claim 88 wherein said step of u&ng a pul 

2 authority to cryptographically /erify jhe pseudo-public key inclu* 

3 public key. 




rise certifying 
g said pseudo- 



1 94. The apparatus ofrclaim 88 wherein said received pseudo-public key is contained in a 

2 pseudo-public certificate. 
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95. A method for storing a stored cryptographically-secured access-controlled datum, 
comprising the sieps of: 

(a) /receiving an access-controlled datum; 

(b) / cryptographically camoflaguing said access-controlled datum such to be 
recognizable by an authorized user thereof but unrecognizable to an unauthorized user thereof; 
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7 (c) storing said camoflaged acc jss-controlled datum in a digital wallet. 

1 96. The method of claim 95 wherein s^d step of cryptographically camoflaguing said access 

2 controlled datum includes: 

3 (a) receiving an access code; 

4 (b) computing a cryptograph^ representdtionArf said access code, said representation 

5 having the property of being reproducible in response t^pluraljty of pseudo-valid access codes 

6 (c) storing said computed cryptographic representation of said access code; 

7 (d) at least partially encrypting said access-controlled datum using said access code; 

8 (e) storing said at least partially encrypted access-controlled datum for subsequent 

9 access by a user providing one of said plurality of said pseudo-valid access codes. 



Jl 97. 



The method of claim 96 wherein said access-controlled datum is a cryptographic key. 
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